[jbossws-issues] [JBoss JIRA] Commented: (JBWS-2216) Soap address incorrect for https
Richard Opalka (JIRA)
jira-events at lists.jboss.org
Wed Jul 30 05:31:08 EDT 2008
[ https://jira.jboss.org/jira/browse/JBWS-2216?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12422981#action_12422981 ]
Richard Opalka commented on JBWS-2216:
--------------------------------------
I commented out SSL connector in server/default/deploy/jboss-web.deployer/server.xml
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS" />
I generated keystore and digitally signed the certificate:
[/home/opalka][/home/opalka]>keytool -genkey -alias tomcat -keyalg RSA -validity 1095 -keystore ~/.keystore
Enter keystore password: changeit
What is your first and last name?
[Unknown]: 127.0.0.1
What is the name of your organizational unit?
[Unknown]: servers
What is the name of your organization?
[Unknown]: Organization name
What is the name of your City or Locality?
[Unknown]: My Country
What is the name of your State or Province?
[Unknown]: My Republic
What is the two-letter country code for this unit?
[Unknown]: EN
Is CN=127.0.0.1, OU=servers, O=Organization Name, L="My City", ST=My Country, C=EN correct?
[no]: yes
Enter key password for <tomcat>
(RETURN if same as keystore password):
[/home/opalka][/home/opalka]>keytool -selfcert -alias tomcat -keystore .keystore
Enter keystore password: changeit
I commented out webservice secure port in server/default/deploy/jbossws.sar/jbossws.beans/META-INF/jboss-beans.xml
<bean name="WSServerConfig" class="org.jboss.wsf.stack.jbws.NativeServerConfig">
<property name="mbeanServer"><inject bean="WSMBeanServerLocator" property="mbeanServer"/></property>
<property name="webServiceHost">${jboss.bind.address}</property>
<property name="modifySOAPAddress">true</property>
<property name="webServiceSecurePort">8443</property>
<property name="webServicePort">8080</property>
</bean>
I updated my web.xml to include security constraints:
<?xml version="1.0" encoding="UTF-8"?>
<web-app xmlns="http://java.sun.com/xml/ns/j2ee"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd"
version="2.4">
<servlet>
<servlet-name>TestService</servlet-name>
<servlet-class>org.jboss.test.ws.jaxws.samples.webparam.PingServiceImpl</servlet-class>
</servlet>
<servlet-mapping>
<servlet-name>TestService</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping>
<security-constraint>
<web-resource-collection>
<web-resource-name>All resources</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
</web-app>
And everything works as expected. My WSDL contains both https and correct port and it's accessible through https only:
<service name="PingServiceImplService">
<port binding="tns:PingServiceBinding" name="PingServicePort">
<soap:address location="https://127.0.0.1:8443/jaxws-samples-webparam"/>
</port>
</service>
> Soap address incorrect for https
> ---------------------------------
>
> Key: JBWS-2216
> URL: https://jira.jboss.org/jira/browse/JBWS-2216
> Project: JBoss Web Services
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: jbossws-native
> Affects Versions: jbossws-native-3.0.1
> Reporter: Joan Pujol Espinar
> Assignee: Richard Opalka
>
> The soap address is incorrect for https.
> There's no way to change the soap address to https.
> Althouth I've in jboss-beans.xml
> <property name="webServiceHost">localhost</property>
> <property name="modifySOAPAddress">true</property>
> <property name="webServiceSecurePort">8545</property>
> <property name="webServicePort">8080</property>
> And I've the CONFIDENTIAL transport-guarantee in the webapp that has the ws.
> <user-data-constraint>
> <description>SSL</description>
> <transport-guarantee>CONFIDENTIAL</transport-guarantee>
> </user-data-constraint>
> The generated WDSL always has soap:address with http
> <port binding="ns1:repositoriDocumentsBinding" name="RepositoriDocumentsWSPort">
> <soap:address location="http://localhost:8080/xcpwsserver/RepositoriDocuments" />
> </port>
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jbossws-issues
mailing list